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CLAIMS 

1 . A method of forwarding broad :ast data packets in a switched data 
communications network, the network inclu ling a plurality of end systems and switches 
connected by links, the switches having access ports connected to end systems and 
network ports connected to other switches, <md each end system having a unique physical 
address, the method comprising the steps of : 

a. assigning different virtual LAN identifiers (VLAN-IDs) to different subsets 
of associated end systems or access ports; 

b. maintaining a first table for mapping the VLAN-IDs to the associated end 
systems or access ports; 

c. maintaining a second table foj: mapping the access ports to the associated 
VLAN-IDs; 

d. when a broadcast packet is received from a source end system at a receiving 
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access port of a first switch 

i) reviewing the fir$t 
VLAN-IDs 
access port 

ii) encapsulatin; 
VLAN-IDs 



i associate with the : 

; l 

ilating tne packet by 

; / 



table for one or more 

source end system or receiving 



adding a header with the associated 
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iii) forwarding ihp^ Encapsulated packet to all other switches in the 
network; ^ 

iv) reviewing^ he se cond table for the access ports on the first switch 
associated with the issociated VLAN-IDs and forwarding the 
broadcast packet ou t the associated access ports; and 

when the encapsulated packet is received at a next switch: 

i) stripping the he ader from the encapsulated packet and 
determining the associated VLAN-IDs; 

ii) reviewing the S€ cond table for the access ports associated with 
the associated VLAN-IDs; itnd 

iii) forwarding the broadcast packet out the associated access ports. 



The method of claim 1, wherein steps a-c include: 
maintaining a common registry of assigned VLAN-IDs; and 



- 16- 

maintaining the first and seccind tables at each switch. 



3. The method of claim 2, wherein steps a-c include: 

registering each end systeni with the common registry, and returning a list of 
assigned VLAN-IDs from the common registry to each switch. 

4. The method of claim 2_jtvherein steps a-c include: 

providing common management of the first and second tables at each switch. 



The method of claim : 



herein steps a-c include: 



sending a signal ^om^e^f?rst switch to the common registry to resolve an 
end system to its assigned WAN-IDs. 



6. The method of claim 1, wherein steps a-c include: 

prior to assigning a VLAN-ID to a specific end system, maintaining a default 
VLAN-ID for that specific end system which maps to all access ports. 

7. The method of claim 1, wherein step d includes: 

maintaining a multicast channel of connections between all switches and 
sending the encapsulated packet on the multicast channel to all other switches in the 
network. 



# 



17 



( 



8. The method of claim 7, wherein steji d includes: 

maintaining a point-to-multipoint cojinection from each switch to all other 
switches in the network. 
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9. The method of claim 7, including: 
providing a network server and maintaining a point-to-point connection 

between the server and each switch; and 

forwarding all broadcast packets received at the first switch to the network 
server, the network server performing steps b-d. 

10. The method of claim 7, wherein each end system is registered with a 
common registry which programs the multi-castfcpannel. 



11. 



The method of claim 1 , wherei: 
maintaining the first and secon 



fsjtefts b/c include: 

at each switch. 
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The method of claim 1, wherein\btep b includes: 

listening to end systems heard ofi respective access ports at each switch and 
maintaining the end systems heard and pieir respective access ports in the first table 
at the respective switch. 



13. The method of claim 1, further 

assigning reserved VLAN-IDs ^vithout limitation as to end system and access 
port; and 

providing at least one switch wjiich 
adding a header with a reserved VLAN 
other switches, and forwarding the bro; 
one switch. 



comprising: 



encapsulates the broadcast packet by 
ID, forwarding the encapsulated packet to all 
dcast packet out the access ports on the at least 
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14. The method of claim 1, wherein step b further includes: 

listening to end systems heard on respective access ports at each switch and 

maintaining the end systems heard and their respective access ports in the first table 

at the respective switch; and I 

upon receipt of a unicast packet far a destination end system unknown to the 

first switch, completing steps d.i-iv) and i.i) and then at the next switch reviewing 

the first table for the respective access port for the destination end system and 

forwarding the packet out the respective access port. 



15. The method of claim 1, wherein 
maintaining a Management Info 
for programming the first and second 



16. The method of claim 15, wh^*$in 

using a Simple Network Manafgeifient 
maintaining the first and second tabl 




17. The method of claim 1, wherein s 
maintaining a VLAN status tat>le 
an entire VLAN-ID. 



>s b-c include: 

;e (MIB) interface at each switch 



stjps b-c include: 

Protocol (SNMP) set message for 



teps b-c include: 

at each switch for enabling and disabling 




\ A computer-readable storage medium comprising program instructions for 

restricting flooding of a data packet, of one of a broadcast, multicast and unknown destination 
type, in a switched data communications network, the network including a plurality of end 
systems and switches connected by links, the switches having access ports connected to end 
5 systems and network ports connected to other switches, the program instructions causing the 
network to: 

a. assign at least one identifier to a respective subset of end systems; 

b. map the at least one assigned identifier to an access port attached to at least one 
end system in the respective subset of end systems; and 

10 c. when the data packet is received from a source end system at a receiving access 

port of a first switch: 

i) determine one or more identifiers associated with the source end system; 

ii) encapsulate the data packet by adding a header with the one or more 
determined identifiers; 

15 iii) forward the encapsulated data packet to all or a subset of other switches 

: in the network; and 

iv) determine if at least one access port other than the receiving access port 
m on the first switch is associated with the one or more determined 

identifiers and forward the data packet out the at least one determined 
*r 20 access port. 

ry ,/ 

. yfT The computer-readable storage medium as recited in claim^J^^urther 
comprising instructions to cause the network to: 

d. when the encapsulated data packet is received at a second switch with access 
ports: 

25 i) strip the header from the encapsulated data packet and to determine 

the one or more encapsulated identifiers in the header of the encapsulated data 
packet; 

ii) determine if at least one access port of the second switch is 
associated with the one or more encapsulated identifiers; and 
30 iii) forward the data packet out the at least one determined access port 

of the second switch. 
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l^^l The computer-readable storage medium as recited in claim^gffurther 
comprising instructions to cause the network to, if in step c(iv) no other access port is 
determined, discard the data packet. 

S -2J?f The computer-readable storage medium as recited in claim^C further 
comprising, in step b, instructions to cause the network to: 

maintain a first table in each switch to relate the at least one assigned identifier 
to the end systems or access ports of the respective switch; and 

maintain a second table in each switch to relate the access ports of the respective 
switch to assigned identifiers. 

-^27 The computer-readable storage medium as recited in claim J2^ ? further 
comprising, in step c.i), instructions to cause the network to: 

review the first table for the one or more identifiers associated with the source 
end system or the receiving access port. 

The computer-readable storage medium as recited in claim J 22^further 
comprising, in step civ), instructions to cause the network to: 

review the second table for an access port associated with the one or more 
determined identifiers. 

. * . ■ 7 

The computer-readable storage medium as recited in claim^23^'wherein the 
assigned identifier is a virtual LAN identifier. 

°L- 1 

t ^3o7 The computer-readable storage medium as recited in clainjJrS^Svherein the 
received data packet is of a protocol not supported by a protocol-specific call processor in the 
first switch. 

The computer-readable storage medium as recited in claiipJrR^ further 
comprising instructions to cause the network to: 

maintain a common registry of assigned identifiers. 

// . to 

' The computer-readable storage medium as recited in claim,56; further 

comprising instructions to cause the network to: 

register each end system or access port with the common registry, and 
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return a list of assigned identifiers from the common registry to each switch for 
the end systems or access ports of the respective switch. 

ib it 

\ / The computer-readable storage medium as recited in claim^l^ffurther 

comprising instructions to cause the network to: 

maintain the mapping at each switch for the end system or access ports of the 
respective switch. 

l%_ > 

1 - r /ZSC The computer-readable storage medium as recited in claim 26^-ftirther 
comprising instructions to cause the network to: 

send a signal from the first switch to the common registry to resolve an end 
system or access port to its assigned identifiers. 

*4 / 

^ f 1 SQ. * The computer-readable storage medium as recited in claim- J*<C further 
comprising instructions to cause the network to: 

prior to assigning an identifier to a specific end system or access port, maintain a 

default identifier for that specific end system or access port which maps to 

predetermined access ports. 

/5 / 

• -i **%T. The computer-readable storage medium as recited in claim,>8f further 

comprising instructions to cause the network to: 

maintain a multicast channel of connections between all or a subset of switches 
and wherein step c(iii) comprises forwarding the encapsulated packet on the multicast 
channel. ^ 

l<e >* 

1 ^£r* The computer-readable storage medium as recited in claim>lVwherein the 
channel includes: 

a point-to-multipoint connection from each switch to all other switches in the 
network. 

i-i / 

The computer-readable storage medium as recited in claim r >8,*further 
comprising instructions to cause the network, at step c(iii), to provide a distributed service in 
the switches for forwarding the encapsulated data packet. 



It \(. 

The computer-readable storage medium as recited in claimJr-Sff ftirther 



comprising instructions to cause the network to assign the identifier based on a policy 
work group definition. 

/<?, i 

\ The computer-readable storage medium as recited in claim >gf further 

comprising instructions to cause the network to: 

maintain at least one mapping table at each switch for performing the mapping 

step. 

3f6, The computer-readable storage medium as recited in claim^Sffurther 
comprising instructions to cause the network to: 

listen to end systems heard on respective access ports at each switch and 
maintain the end systems heard and their respective access ports in the mapping table at 
the respective switch. 

■ £ J 

„J#T: The computer-readable storage medium as recited in claim 1#, further 
comprising instructions to cause the network to: 

assign a reserved identifier without limitation as to end system and access port. 

^-3-87 The computer-readable storage medium as recited in claim^4^rfurther 
comprising instructions to cause the network to: 

listen to end systems heard on respective access ports at each switch and to 
maintain the end systems heard and their respective access ports in a mapping table at 
the respective switch; and 

upon receipt of a unicast packet for a destination end system unknown to the 
first switch, complete step c for the unicast packet and then at the next switch review 
the mapping table for the respective access port for the destination end system and 
forward the packet out the respective access port. 

^f. ' The computer-readable storage medium as recited in claim >8; further 
comprising instructions to cause the network to: 

maintain a Management Information Base (MIB) interface at each switch for 
programming at least one mapping table, the mapping table being used to perform the 
mapping step. 
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^ J Jtff. The computer-readable storage medium as recited in claim-3#rftirther 
comprising instructions to cause the network to: 

use a Simple Network Management Protocol (SNMP) set message to maintain 
the mapping table at each switch. 

.vk 1 

Jt^r The computer-readable storage medium as recited in claim^8rfiirther 
comprising instructions to cause the network to: 

maintain a status table at each switch to enable and disable a respective subset. 



42. Computer software, residing on a computei^readable storage medium, 
comprising instructions for use in a switch in a switched communications network including a 
plurality of end systems, the computer software for restricting flooding of a data packet 
selected from the group consisting of a broadest packet, a multicast packet, and an unknown 
destination packet of a protocol nonsupported by a call processor in a switch which receives 
the data packet, the instructions causingohe switch to: 

assign at least one ipentf™er to h respective subset of end systems; 
map the at least one Assigned identifier to an access port of the access switch 
attached to at least one e/KiVsysrem in the respective subset of end systems; 

upon receipt of the data packet at the access switch, encapsulate the data packet 
with the at least one identifier assigned to a source end system of the data packet, to 
forward the encapsulated packet to all or a subset of other switches in the network, and 
to send the original data packet to access ports having the at least one identifier; and 

uponreceipt of the encapsulated packet at a receiving switch, de-encapsulate the 
packet and to forward the de-encapsulated packet to the access ports having the at least 
one identifier. 
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^^3t A computer-readable storage medium comprising program instructions for 
restricting flooding of a data packet, of one of a broadcast, multicast and unknown destination 
type, in a switch to be used in a switched data communications network, the network to 
include end systems and switches connected by links, the switches having access ports 
connected to end systems and network ports connected to other switches, the program 
Insffuctrotis causing the switch to: 

a. assign at least one identifier to a respective subset of end systems; 
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b. map the at least one assigned identifier to an access port attached to at least one 
end system in the respective subset of end systems; and 

c. when the data packet is received from a source end system at a receiving access 
port of the switch: 

i) determine one or more identifiers associated with the source end system; 

ii) encapsulate the data packet by adding a header with the one or more 
determined identifiers; 

iii) forward the encapsulated data packet to all or a subset of other switches 
in the network; and 

iv) determine if at least one access port other than the receiving access port 
on the switch is associated with the one or more determined identifiers 
and forward the data packet out the at least one determined access port. 

^MT The computer-readable storage medium as recited in claim^l^ further 
comprising instructions to cause the switch to: 

d. when an encapsulated data packet is received: 

i) strip the header from the encapsulated data packet and determine 
the one or more encapsulated identifiers in the header of the encapsulated data 
packet; 

ii) determine if at least one access port of the switch is associated with 
the one or more encapsulated identifiers; and 

iii) forward the data packet out the at least one determined access port of 
the switch. 

' The computer-readable storage medium as recited in claim^37further 

comprising instructions to cause the switch to, if in step c(iv) no other access port is 
determined, discard the data packet. 

/ v 46: The computer-readable storage medium as recited in claim^3; further 
comprising, in step b, instructions to cause the switch to: 

maintain a first table to relate the at least one assigned identifier to the end 
systems or access ports of the switch; and 

maintain a second table to relate the access ports of the switch to assigned 
identifiers. 
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1 r Th e computer-readable storage medium as recited in clairpj^Tturther 

comprising, in step c.i), instructions to cause the switch to: 

review the first table for the one or more identifiers associated with the source 
end system or the receiving access port. 

3> .. $fl 

5 ^ \ y*8r*" The computer-readable storage medium as recited in claim 4^further 
comprising, in step civ), instructions to cause the switch to: 

review the second table for an access port associated with the one or more 
determined identifiers. 

j> - ^J&" The computer-readable storage medium as recited in claim^37*further 
10 comprising instructions to cause the switch to: 
; 3 prior to assigning an identifier to a specific end system or access port, maintain a 

ijj default identifier for that specific end system or access port which maps to 

predetermined access ports. 

\^ \ . iKJT" The computer-readable storage medium as recited in clairo^W, "further 

* 15 comprising instructions to cause the switch to: 

^ listen to end systems heard on the access ports and to maintain the end systems 

i^j heard and their respective access ports in a mapping table. 

!S 33 S3 

S ^ ; , .^H'T" The computer-readable storage medium as recited in claim^3* 5 further 
comprising instructions to cause the switch to: 
20 maintain a Management Information Base (MIB) interface. 

The computer-readable storage medium as recited in claimj^ further 
comprising instructions to cause the switch to: 

use a Simple Network Management Protocol (SNMP) message to maintain a 
mapping table. 

35 

25 The computer-readable storage medium as recited in claiijL^r further 

comprising instructions to cause the switch to: 

maintain a status table to enable and disable a respective subset. 



